The Discord authentication strategy authenticates users using a Discord account and OAuth 2.0 tokens. The strategy requires a verify callback to perform a look up of the user account given a verified OAuth 2.0 token.

JavaScript

const DiscordTokenStrategy = require('passport-discord-token');

passport.use(new DiscordTokenStrategy({
    clientID: DISCORD_APP_ID,
    clientSecret: DISCORD_APP_SECRET,
    apiVersion: "v8"
  }, function(accessToken, refreshToken, profile, done) {
    User.findOrCreate({discordId: profile.id}, function (error, user) {
      return done(error, user);
    });
  }
));

TypeScript

import { DiscordTokenStrategy } from "passport-discord-token";

passport.use(new DiscordTokenStrategy({
    clientID: DISCORD_APP_ID,
    clientSecret: DISCORD_APP_SECRET,
    apiVersion: "v8"
  }, function(accessToken, refreshToken, profile, done) {
    User.findOrCreate({discordId: profile.id}, function (error, user) {
      return done(error, user);
    });
  }
));

Authenticate Requests

Use passport.authenticate(), specifying discord-token as the strategy to authenticate requests.

app.post('/auth/discord/token',
  passport.authenticate('discord-token'),
  function (req, res) {
    // do something with req.user
    res.send(req.user? 200 : 401);
  }
);

Client Requests

Clients can send requests to routes that use the passport-discord-token strategy using query params. Clients must transmit the code parameter that is received after Discord login. Clients may also optionally transmit a state parameter.

GET /auth/discord/token?code=<TOKEN_HERE>&state=<STATE_HERE>

FAQs

What is @acceleratxr/passport-twitter?

Is @acceleratxr/passport-twitter well maintained?

Package last updated on 15 Feb 2022

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install